lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20030727074122.34453.qmail@web13903.mail.yahoo.com>
From: scosol at yahoo.com (Nathan Seven)
Subject: DCOM RPC exploit  (dcom.c)

--- Paul Schmehl <pauls@...allas.edu> wrote:
> 
> Are you really serious?  Recall Slammer?  There were
> networks that were
> locked down pretty tight.  Slammer couldn't get in,
> right?  Then one
> developer who got his unpatched copy of SQL inside
> the network, by
> logging in through VPN with his infected laptop,
> took the entire network
> down.

Are *you* serious?

Running MSSQL server on my laptop that I also use to
VPN in is IMO a pretty fucking corner-case...

=====
--
live- http://www.thedenofsin.org/
to- AIM: IMFDUP
penetrate- http://eAnger.org/
_may the bitches set you free_

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ